Vulnerabilities > Qualcomm > Qca4004 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-07-04 CVE-2023-21631 Unspecified vulnerability in Qualcomm products
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
network
low complexity
qualcomm
critical
 9.8
9.8
2023-06-06 CVE-2022-22076 Unspecified vulnerability in Qualcomm products
information disclosure due to cryptographic issue in Core during RPMB read request.
local
low complexity
qualcomm
5.5
5.5
2023-06-06 CVE-2022-40507 Double Free vulnerability in Qualcomm products
Memory corruption due to double free in Core while mapping HLOS address to the list.
local
low complexity
qualcomm CWE-415
7.8
7.8
2023-06-06 CVE-2022-40521 Improper Authentication vulnerability in Qualcomm products
Transient DOS due to improper authorization in Modem
network
low complexity
qualcomm CWE-287
7.5
7.5
2023-06-06 CVE-2022-40523 Exposure of Resource to Wrong Sphere vulnerability in Qualcomm products
Information disclosure in Kernel due to indirect branch misprediction.
local
low complexity
qualcomm CWE-668
5.5
5.5
2023-05-02 CVE-2022-33304 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.
network
low complexity
qualcomm CWE-476
7.5
7.5
2023-05-02 CVE-2022-40505 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in Modem while parsing DNS hostname.
network
low complexity
qualcomm CWE-125
7.5
7.5
2023-04-13 CVE-2022-33258 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in modem while reading configuration parameters.
network
low complexity
qualcomm CWE-125
7.5
7.5
2023-04-13 CVE-2022-25678 Out-of-bounds Write vulnerability in Qualcomm products
Memory correction in modem due to buffer overwrite during coap connection
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-04-13 CVE-2022-25726 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet
network
low complexity
qualcomm CWE-125
7.5
7.5